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is claimed is: 




A method of automatically establishing differentiated services quality of service 
treatment for a return packet flow that is associated with an originating packet flow in 
a nerwork, the method comprising the computer-implemented steps of: 
receivmg the originating packet flow; 

determining that one or more packets in the originating packet flow are marked with a 

DS€P value that matches a policy rule that requires setting a specified DSCP 

value^in the return packet flow; 
creating and stVing information identifying the originating packet flow and a second 

DSCP vakie for marking the return packet flow; 
receiving the returri packet flow and determining that it is associated with the 

originating packet flow; 
marking packets of the\return packet flow with the second DSCP value. 

A method as recited in Claim 1, wherein the information identifying the originating 
packet flow and the second DSCP value are created and stored in a flow table of a 
network switch that is acting as\ policy enforcement point. 

A method as recited in Claim 1, whefcein the information identifying the originating 
packet flow and the second DSCP valute are created and stored in a network-based 
application recognition table of a network\switch that is acting as a policy 
enforcement point. \ 

A method as recited in Claim 1 , further comprising the steps of: 
identifying an end of the originating packet flow; \ 

removing the stored information that identifies the originating packet flow and a 
second DSCP value for marking the return packetsflow. 



12 5. \ A method as recited in Claim 1, wherein the steps are carried out at a switch device 

1 3 that is logically located at an edge point of a network. 

1 6. A mVthod as recited in Claim 1 , wherein creating and storing information comprises 

2 creating and storing a static policy at a policy server, wherein the static policy 

3 specified applying the second DSCP value to the return packet flow. 

1 7. A computerVeadable medium carrying one or more sequences of instructions for 

2 automaticallyVstablishing differentiated services quality of service treatment for a 

3 return packet flow that is associated with an originating packet flow in a network, 

4 which instruction^, when executed by one or more processors, cause the one or more 

5 processors to carry Wt the steps of: 

6 receiving the originating packet flow; 

7 determining that one onmore packets in the originating packet flow are marked with a 

8 - DSCP value that matches a policy rule that requires setting a specified DSCP 

9 value in the return packet flow; 

1 0 creating and storing information identifying the originating packet flow and a second 

1 1 DSCP value for marking the return packet flow; 

12 receiving the return packet flow Vid determining that it is associated with the 

1 3 originating packet flow; \ 

14 marking packets of the return packefyflow with the second DSCP value. 

1 8. A computer-readable medium as recitedVn Claim 7, wherein the information 

2 identifying the originating packet flow and. the second DSCP value are created and 

3 stored in a flow table of a network switch that is acting as a policy enforcement point. 

1 9. A computer-readable medium as recited in Claim 7, wherein the information 

2 identifying the originating packet flow and the secbnd DSCP value are created and 

3 stored in a network-based application recognition tame of a network switch that is 

4 aciing as a policy enforcement point. \ 
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A computer-readable medium as recited in Claim 7, wherein the steps are carried out 
at a switch device that is logically located at an edge point of a network. 



1 11. X computer-readable medium as recited in Claim 7, wherein creating and storing 

2 information comprises creating and storing a static policy at a policy server, wherein 

3 the static policy specifies applying the second DSCP value to the return packet flow. 



n 



1 12. A computer-readable medium as recited in Claim 7, further comprising instructions 

2 for carryingsput the steps of: 

3 identifying anVend of the originating packet flow; 

4 removing the stored information that identifies the originating packet flow and a 

5 second value for marking the return packet flow. 



1 13. An apparatus that can automatically establishing differentiated services quality of 

2 service treatment for a return packet flow that is associated with an originating packet 

3 flow in a network, comprising 

4 means for receiving the originating packet flow; 

5 means for determining that one ormore packets in the originating packet flow are 

6 marked with a first DSCP value that includes a request for application of the 

7 same quality of service treatment to the return packet flow; 

8 means for creating and storing informatum identifying the originating packet flow and 

9 a second DSCP value for marking me return packet flow; 

10 means for receiving the return packet flow an^ determining that it is associated with 

11 the originating packet flow; 

1 2 means for marking packets of the return packet fliwv with the second DSCP value. 



1 14. An apparatus as recited in Claim 13, wherein the infonHation identifying the 

2 originating packet flow and the second DSCP value are created and stored in a flow 

3 table of a network switch that is acting as a policy enforcement point. 
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1 15. An\apparatus as recited in Claim 13, wherein the information identifying the 

2 originating packet flow and the second DSCP value are created and stored in a 

3 networlcvbased application recognition table of a network switch that is acting as a 

4 policy enforcement point. 

1 16. An apparatus as recited in Claim 13, wherein the first DSCP value that includes a 

2 request for application of the same quality of service treatment to the return packet 

3 flow has a value that issone unit greater than the second DSCP value. 

1 17. An apparatus as recited in Clhim 1 3, wherein the steps are carried out at a switch 

2 device that is logically located at an edge point of a network. 

1 18. An apparatus as recited in Claim 1 3, Vherein the means for creating and storing 

2 information comprises a means for cremmg and storing a static policy at a policy 

3 server, wherein the static policy specifies applying the second DSCP value to the - 

4 return packet flow. \ 

1 19. An apparatus as recited in Claim 13, further compiling: 

2 means for identifying an end of the originating packet xlow; 

3 means for removing the stored information that identifies^ie originating packet flow 

4 and a second DSCP value for marking the return packet flow. 

1 20. An apparatus for automatically establishing differentiated servicesVuality of service 

2 treatment for a return packet flow that is associated with an originating packet flow in 

3 a network, comprising: \ 

4 a network interface that is coupled to the data network for receiving one or more 

5 packet flows therefrom; \ 
6" ^a-pFecesSorj J 



50325-0503 (2872) 28 



one or more stored sequences of instructions which, when executed by the processor, 
\ cause the processor to carry out the steps of: 
\ receiving the originating packet flow; 

determining that one or more packets in the originating packet flow are 
\ marked with a DSCP value that matches a policy rule that requires 
\ setting a specified DSCP value in the return packet flow; 
creatinkand storing information identifying the originating packet flow and a 

second DSCP value for marking the return packet flow; 
receiving tnfe return packet flow and determining that it is associated with the 

originating packet flow; 
marking packets\pf the return packet flow with the second DSCP value. 



20. An apparatus as recited in Claim 19, wherein the information identifying the 
originating packet flow and theu second DSCP value are created and stored in a flow 
table of a network switch that is acting as a policy enforcement point. 

21. An apparatus as recited in Claim 1 9, wherein the information identifying the 
originating packet flow and the second DSCP value are created and stored in a 
network-based application recognition tablevof a network switch that is acting as a 
policy enforcement point. \ 

22. An apparatus as recited in Claim 19, wherein the stefos are carried out at a switch 
device that is logically located at an edge point of a network. 

23. An apparatus as recited in Claim 19, wherein creating and sroring information 
comprises creating and storing a static policy at a policy serve\wherein the static 
policy specifies applying the second DSCP value to the return packet flow. 
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An apparatus as recited in Claim 19, comprising further stored sequences of 
instructions which, when executed by the processor, cause the processor to carry out 
the\steps of: 

identifying an end of the originating packet flow; 

removing the stored information that identifies the originating packet flow and a 
second DSCP value for marking the return packet flow. 



1 25. A method of providing a selective automatic bi-directional differentiated services 
_ 2 quality of service treatment guarantee for a return packet flow that is associated with 

D 3 an originating packet flow in a network, the method comprising the computer- 

J| 4 implemented steps of: 

0 5 creating and storing aVirst DSCP value and a second DSCP value that are both 

n \ 

|j 6 associated with me same per-hop-behavior (PHB) treatment at core network 

^ 7 - devices but are each associated with a different reflective DSCP setting; 

s& 8 receiving the originating packet flow; 

^ 9 receiving the return packet flow and determining that it is associated with the 

□ 10 originating packet flow; \ 

2; 1 1 when one or more packets in the originating packet flow are marked with the first 

12 DSCP value, marking packetsW the return packet flow with the second DSCP 

13 value; \ 

14 when one or more packets in the originating packet flow are marked with the second 

1 5 DSCP value, passing packets of the return packet flow without modification of 

16 DSCP values in such packets. \ 

1 26. A method as recited in Claim 25, wherein marking packets of the return packet flow is 

2 carried out only when the originating packet flow originates from a trusted interface. 

1 27. A method as recited in Claim 1 , wherein marking packets of the return packet flow is 

2 carried out only when the originating packet flow originates from a trasted interface. 
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28. A method as recited in Claim rTwhgrein the steps of marking packets of the return 
packet flow with the second DSCP valuectmagrises the steps of marking packets of 
the return packet flow with the second DSCP valueohlyjvhen the originating packet 
,flow originates from a trusted interface. 
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